Wireskip is an open source VPN protocol designed with the goal of providing unrestricted access to the internet from anywhere.
It's pretty fast, looks like regular HTTP/2 traffic, has multi-protocol support, multiplexed connections, onion encryption & routing and increased privacy.
Wireskip seeks to solve the problems of modern consumer VPNs and onion-routing networks.
- Encrypted with multiple layers: Traffic is encapsulated in layers of encryption and routed through a series of relays, each knowing only the required information to perform its job.
- Single or multiple hops: Define the amount of hops you prefer in a circuit, less for lower latency, more for increased privacy.
- Customizable circuits: By default relays are selected randomly based on the number of hops configured, but you can choose specific relays or a series of relays.
- Tunnel all system traffic: All traffic on the system (both TCP and UDP) can be tunneled through the connection broker using the TUN device, just like a regular VPN client.
- Or tunnel only specific apps: Any application that supports the SOCKSv5 protocol can be configured to route its traffic through the connection broker. Have an app that doesn't support SOCKS? Intercept its socket connections.
- Indistinguishable traffic: Connections are encrypted, multiplexed and encapsulated into regular TLS HTTP/2 traffic. Regular connections to example.com and relaying traffic via example.com look pretty much identical.
- No user accounts needed: Access to Wireskip networks is performed with accesskeys, used to cryptographically and independently generate tokens for relays to authorize service.
- A powerful API: The client controller provides a REST API used by the CLI, but opens the door for GUI's, web frontends, browser extensions, router and custom integrations.
- Open Source: Source code for the client and the relay is available on GitHub, and published under the MIT license. You can build from source, browse the code, and contribute.